Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 

SonicWALL Sample Event Messages

 

Use these sample event messages to verify a successful integration with JSA.

Note

Due to formatting issues, paste the message format into a text editor and then remove any carriage return or line feed characters.

SonicWALL Sample Messages When You Use the Syslog Protocol

Sample 1: The following sample event message shows that a probable port scan is detected.

Table 1: JSA field names and highlighted values in the event payload

JSA field name

Highlighted values in the event payload

Event ID

83

Source IP

10.0.0.3

Source Port

443

Source Mac

00:00:5E:00:53:ff

Destination IP

172.16.194.2

Destination Port

47379

Destination Mac

00:00:5E:00:53:00

Device Time

2018-11-07 11:16:02

Sample 2: The following sample event message shows that NTP updated successfully.

JSA field name

Highlighted values in the event payload

Event ID

1231

Source IP

10.0.2.3

Source Port

123

Destination IP

10.0.5.6

Destination Port

123

Device Time

2018-11-13 00:26:12